Information on source package jackson-databind

Available versions

Release	Version
bullseye	2.12.1-1+deb11u1
bookworm	2.14.0-1
trixie	2.14.0-1
sid	2.14.0-1

Open issues

Bug	bullseye	bookworm	trixie	sid	Description
CVE-2021-46877	vulnerable (no DSA)	fixed	fixed	fixed	jackson-databind 2.10.x through 2.12.x before 2.12.6 and 2.13.x before ...

Resolved issues

Bug	Description
CVE-2022-42004	In FasterXML jackson-databind before 2.13.4, resource exhaustion can o ...
CVE-2022-42003	In FasterXML jackson-databind before versions 2.13.4.1 and 2.12.17.1, ...
CVE-2021-20190	A flaw was found in jackson-databind before 2.9.10.7. FasterXML mishan ...
CVE-2020-36518	jackson-databind before 2.13.0 allows a Java StackOverflow exception a ...
CVE-2020-36189	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-36188	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-36187	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-36186	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-36185	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-36184	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-36183	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-36182	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-36181	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-36180	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-36179	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-35728	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-35491	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-35490	FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interact ...
CVE-2020-25649	A flaw was found in FasterXML Jackson Databind, where it did not have ...
CVE-2020-24750	FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interact ...
CVE-2020-24616	FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interact ...
CVE-2020-14195	FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interact ...
CVE-2020-14062	FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interact ...
CVE-2020-14061	FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interact ...
CVE-2020-14060	FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interact ...
CVE-2020-11620	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-11619	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-11113	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-11112	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-11111	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-10969	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-10968	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-10673	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-10672	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-10650	A deserialization flaw was discovered in jackson-databind through 2.9. ...
CVE-2020-9548	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-9547	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-9546	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interact ...
CVE-2020-8840	FasterXML jackson-databind 2.0.0 through 2.9.10.2 lacks certain xbean- ...
CVE-2019-20330	FasterXML jackson-databind 2.x before 2.9.10.2 lacks certain net.sf.eh ...
CVE-2019-17531	A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...
CVE-2019-17267	A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...
CVE-2019-16943	A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...
CVE-2019-16942	A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...
CVE-2019-16335	A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...
CVE-2019-14893	A flaw was discovered in FasterXML jackson-databind in all versions be ...
CVE-2019-14892	A flaw was discovered in jackson-databind in versions before 2.9.10, 2 ...
CVE-2019-14540	A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...
CVE-2019-14439	A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...
CVE-2019-14379	SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mis ...
CVE-2019-12814	A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...
CVE-2019-12384	FasterXML jackson-databind 2.x before 2.9.9.1 might allow attackers to ...
CVE-2019-12086	A Polymorphic Typing issue was discovered in FasterXML jackson-databin ...
CVE-2018-19362	FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to h ...
CVE-2018-19361	FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to h ...
CVE-2018-19360	FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to h ...
CVE-2018-14721	FasterXML jackson-databind 2.x before 2.9.7 might allow remote attacke ...
CVE-2018-14720	FasterXML jackson-databind 2.x before 2.9.7 might allow attackers to c ...
CVE-2018-14719	FasterXML jackson-databind 2.x before 2.9.7 might allow remote attacke ...
CVE-2018-14718	FasterXML jackson-databind 2.x before 2.9.7 might allow remote attacke ...
CVE-2018-12023	An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4 ...
CVE-2018-12022	An issue was discovered in FasterXML jackson-databind prior to 2.7.9.4 ...
CVE-2018-11307	An issue was discovered in FasterXML jackson-databind 2.0.0 through 2. ...
CVE-2018-7489	FasterXML jackson-databind before 2.7.9.3, 2.8.x before 2.8.11.1 and 2 ...
CVE-2018-5968	FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allo ...
CVE-2017-17485	FasterXML jackson-databind through 2.8.10 and 2.9.x through 2.9.3 allo ...
CVE-2017-15095	A deserialization flaw was discovered in the jackson-databind in versi ...
CVE-2017-7525	A deserialization flaw was discovered in the jackson-databind, version ...

Security announcements

DSA / DLA	Description
DLA-3407-1	jackson-databind - security update
DLA-3207-1	jackson-databind - security update
DSA-5283-1	jackson-databind - security update
DLA-2990-1	jackson-databind - security update
DLA-2638-1	jackson-databind - security update
DLA-2406-1	jackson-databind - security update
DLA-2270-1	jackson-databind - security update
DLA-2179-1	jackson-databind - security update
DLA-2153-1	jackson-databind - security update
DLA-2135-1	jackson-databind - security update
DLA-2111-1	jackson-databind - security update
DLA-2030-1	jackson-databind - security update
DSA-4542-1	jackson-databind - security update
DLA-1943-1	jackson-databind - security update
DLA-1879-1	jackson-databind - security update
DLA-1831-1	jackson-databind - security update
DSA-4452-1	jackson-databind - security update
DLA-1798-1	jackson-databind - security update
DLA-1703-1	jackson-databind - security update
DSA-4190-1	jackson-databind - security update
DSA-4114-1	jackson-databind - security update
DSA-4037-1	jackson-databind - security update
DSA-4004-1	jackson-databind - security update